Why nominate?

The CSO50 Award is a recognized mark of risk and security excellence. The award is given to organizations/companies rather than individuals, making it an honor in which everyone on your security team can take pride. It is your opportunity to share with your peers the risk and security innovations that led the way to greater success for your organization. Of course, we know some details must be held confidential – and we provide the way for you to do that.

Executives and managers from honored organizations will be recognized among their peers and colleagues at the 2019 CSO50 Conference + Awards, to be held April 8-10, 2019. Each winning organization will receive four (4) complimentary conference passes.

In addition to being recognized as a security leader, for all the team and new hire benefits that provides, being honored as a CSO50 company will bring your executives unparalleled access to peers and true experts at our CSO50 conference. The conference is open to an exclusive group of security and IT practitioners and sponsors. See the perspective from past honorees and attendees below.

What do the CSO50 awards recognize?

The 6th annual CSO50 Awards will recognize 50 organizations (and the people within them) for their security project or initiative that demonstrates outstanding business value and thought leadership.

What kind of nominations qualify?

CSO encourages nominations on a range of security topics. To be selected, nominations must not only show that the nominee organization has executed its project well, but that it has done so in uncommon, innovative ways: pioneering a new technology, applying a familiar technology to a new purpose, setting the bar higher for their organization’s security objectives. And they must demonstrate business value, not just the benefits of better security and risk management programs.

Note: The CSO50 Award is not awarded to technology vendors for their products, however, we will consider nominations for technology-driven services that leverage a company’s non-technology core competency — as long as the service is a natural extension of the company’s core business. For example, a nomination from a financial institution would be considered for offering additional identity theft protection as part of a revenue-generating initiative. If you have questions about the eligibility of your project/initiative for the CSO50 awards, please contact Abbey Sklar at speakermanager@idg.com

Who can nominate a company or project for the award?

The CSO50 program is open to entries from internal business, security and PR stakeholders as well as vendors and their PR companies who are nominating customers. If you are a third party creating a nomination, you must agree to notify the nominated organization before submitting the nomination.

Is there a fee to nominate?

There is no cost to nominate. You may nominated multiple projects or initiatives for a single company for consideration.

How does CSO judge the CSO50 awards?

Working with judges including security experts, academics and CSOs, the CSO50 honorees will be selected by the CSO editorial team based on information submitted in this online nomination. Since we are unable to review any additional materials beyond information submitted in the nomination form, nominators are encouraged to include any information about their project or initiative that they would like the judges to consider in their answers to the questions on the application.

Each entry will be judged based on how it compares with all other entries submitted. Honorees selected for the final winner list are not ranked on that list.

Judging Criteria

To be selected for a CSO50 Award, your nominated project or initiative must demonstrate excellence in:

Innovation: The extent to which your organization used security in a new way or enabled new ways of improving the organization’s security and risk posture.

Business results and value: The measurable impact, backed up by supporting data that your project has had on your organization’s business.

How to increase your chances of winning

Nominations that focus on the business goals and results of the project and provide detailed answers to all questions have a better chance of winning. The most successful applications are written by the CSO or another business-oriented security or risk manager, with input from both business stakeholders and technical staff. If you are a security vendor who would like to nominate a customer for a CSO50 Award, we strongly recommend you enlist the CSO or another security manager within the organization you wish to nominate to submit the nomination.

To win a CSO50 Award, submitters must provide data and examples that support their claims of innovation and business value. For example, it is not enough to tell us that an identity management system reduced the volume of compromised credentials. You must also provide metrics that illustrate your claim. Winning applications should also include narrative examples or anecdotes that illustrate the results of your project, such as descriptions of how new processes create efficiency, how employees embrace security more widely, or the impact the project has had on your organization’s risk profile.

How we use your information

The information you provide in your CSO50 nomination will be used by CSO for judging the awards and for online articles or other publicity relating to the CSO50 Awards. Application information will be used for editorial and CSO50 conference purposes only, with the exception of contact information and vendor information, which may be used to market CSO content and programs.

If you have information about your project (such as internal metrics) that you would prefer not be published, but which you would like us to consider as part of your application, please note this in the text box where the information appears or where asked to do so specifically in the nomination form. Information not labeled in this way will be considered by CSO editors to be publishable.

Deadlines and Expectations

The deadline for the 2019 CSO50 Awards is August 1, 2018 at 11:59pm PT. Nominations must be submitted online. Honorees will be notified by email.

If your company is selected as a CSO50 award winner, a member of the nominated company will need to formally acknowledge and accept the award within one week of receiving the notification. If you do not complete this step, you will forfeit your award and the CSO editors will select another winner from the pool of finalists.

Organizations with winning projects will be invited to present their projects at the CSO50 Conference + Awards taking place in April 8-10, 2019. Please note that notification that your organization has won does not necessarily guarantee a presentation time at the conference.  That said, CSO tries to accommodate every organization willing to present with a speaking opportunity – either through a dedicated presentation time, or by hosting a lunch discussion table.  Organizations willing to present are encouraged to confirm their interest as soon as possible once they are notified they are a winner.

Additionally, all winning teams are invited to attend the conference, and receive their award during the CSO50 Awards dinner.

Nomination overview and instructions

Download a PDF of the nomination form (Please note that nominations must be completed online.)

There are three parts to the nomination questionnaire you will be completing:

  • Information about the nominated non-technology company/organization: Here we are asking for basic information about the organization you are nominating
  • Nominated project: this part includes questions (in multiple-choice, short-answer and essay formats) about the nominated project or initiative
  • The project’s champions: here were are requesting contact information for those who championed the project or initiative

You can leave the nomination website and return as many times as necessary to complete the nomination form by bookmarking the page in your Web browser or clicking on the link in your confirmation email. Before you leave the application, remember to click the “Save” button at the bottom of the form. Do not click the “Submit” button until your application is complete.

Before completing information about your nominated project or initiative, we recommend that you discuss your responses with knowledgeable people within your organization, such as the key security managers and business-unit leaders who are major players in the project or initiative you are describing in the application. Be aware that once you have clicked on the “Submit” button, you will not be able to revise your answers.

Contact information

For questions regarding the CSO50 Awards or the nomination process, please email your questions to Abbey Sklar at speakermanager@idg.com

Download a PDF of the nomination form (Please note that nominations must be completed online.)